Job Details

Home

SPLUNK ENTERPRISE SECURITY ENGINEER || Must be a US Citizen at Enterprise, Utah, USA

Email: [email protected]

Position : SPLUNK ENTERPRISE
SECURITY ENGINEER

Location : This is a hybrid position with 2 days a week on-site in Woodlawn, MD

Visa : Must be a US Citizen and
able to obtain and maintain a US Public Trust clearance.

Duration: 12 months+ with strong potential for contract to hire

Duties And Responsibilities

Alert use case
development

Upgrade Splunk apps
required by Splunk ES upgrades.

Splunk Enterprise
Security administration and management

Configure notable event
actions, action menus, and Adaptive Responses

Data onboarding and data
ingestion normalization recommendations

Strong knowledge of
security risk procedures, security patterns, authentication technologies,
and security attack pathologies

Develop, evaluate, and
document, specific metrics for management purposes.

Write complex code to
install and manage the Splunk enterprise development.

Performing maintenance
and optimization of existing clustered Splunk deployments

Create Dashboards to
monitor the traffic volumes, response times, errors, and warnings across
various data centers.

Monitor the web portals,
log files, and databases.

Provide debugging and
monitoring capabilities.

Design and Develop Splunk
for routine use.

Solve complex Integration
challenges and debug complex configuration issues.

Consult with stakeholders
to establish, maintain, and refresh their strategic direction in cloud
adoption.

Become knowledgeable on
the CDM technical requirements for the federal governments CDM program.
Understand your

role in CDM activities.

Involved in a wide range
of security issues including architectures, firewalls, electronic data
traffic, and network access.

Design, manage, and
maintain enterprise SIEM infrastructure to improve data ingestion
processes, including architectural work on data pipelines to ensure
optimal flow of data.

Maintenance,
configuration, and implementation of products, appliances, and devices on
the enterprise network

Basic Qualifications

Bachelors degree and 7
years of experience, Master's degree and 5 years of experience, or 11
years of experience in place of a degree

At least 4 years of
experience using customer-focused Splunk Enterprise Security SIEM
engineering background - SME knowledge of ES v4.7

At least 4 years of
experience in a senior Splunk role working in a Splunk clustered
environment supporting SOC or NOC

environments

At least 4 years of
experience with:

In-depth knowledge of
designing, upgrading, maintaining, and implementing network devices on a
large-scale enterprise

Direct experience with
Splunk Engineering and data integration

Prior SIEM data modeling
experience on a similar platform at scale (>50 servers)

Scripting and development
skills in Python/Perl with a deep comprehension of regular expressions

Coordination and
communication with other remotely deployed team members

Developing documentation
with processes and procedures

Proposing, and
implementing automation features in a large enterprise environment

At least 3 years of
experience with Linux and SQL/ODBC interfaces

At least 2 years of
experience in app interface development, using REST APIs

Hold active Splunk Core
Certifications of at least Splunk Architect

Minimum of 3 year of
experience in developing and tailoring reporting from network security
tools.

Must be able to obtain
and maintain a US Public Trust clearance.

Preferred Qualifications

Candidates with these
skills will be given preferential consideration.

Experience with Splunk
Common Information Model (CIM) and Enterprise Analytic

Strong problem-solving
abilities with an analytic and qualitative eye for reasoning under
pressure.

Self-starter with the
ability to independently prioritize and complete multiple tasks with
little to no supervision.

Knowledge of Cloud
Services such as AWS, Azure, Office365

Ability to script in one
more of the following computer languages Python, Bash, Visual Basic or
PowerShell

Experience in automating
Splunk Deployments and orchestration within a Cloud environment.

Regards,

Sandy M
|
1Point System LLC

Lead Technical Recruiter

Direct:

(803)-828-2974

Email:
[email protected]

Fax:
803-832-7973

www.1pointsys.com

115 Stone Village Drive

Suite C

Fort Mill, SC

29708

LinkedIn :
https://www.linkedin.com/in/sandy-m-74b06b212/

An E-Verified company | An Equal Opportunity
Employer

--

Keywords: cprogramm information technology Maryland South Carolina
SPLUNK ENTERPRISE SECURITY ENGINEER || Must be a US Citizen
[email protected]

[email protected]
View all

Tue Jul 16 20:48:00 UTC 2024

To remove this job post send "job_kill 1565625" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

sandyusstaffingrecruiter@gmail.com wrote:
Position : SPLUNK ENTERPRISE
SECURITY ENGINEER

Location : This is a hybrid position with 2 days a week on-site in Woodlawn, MD

Visa        :  Must be a US Citizen and
able to obtain and maintain a US Public Trust clearance.

Duration: 12 months+ with strong potential for contract to hire

Duties And Responsibilities

Alert use case
     development

Upgrade Splunk apps
     required by Splunk ES upgrades.

Splunk Enterprise
     Security administration and management

Configure notable event
     actions, action menus, and Adaptive Responses

Data onboarding and data
     ingestion normalization recommendations

Strong knowledge of
     security risk procedures, security patterns, authentication technologies,
     and security attack pathologies

Develop, evaluate, and
     document, specific metrics for management purposes.

Write complex code to
     install and manage the Splunk enterprise development.

Performing maintenance
     and optimization of existing clustered Splunk deployments

Create Dashboards to
     monitor the traffic volumes, response times, errors, and warnings across
     various data centers.

Monitor the web portals,
     log files, and databases.

Provide debugging and
     monitoring capabilities.

Design and Develop Splunk
     for routine use.

Solve complex Integration
     challenges and debug complex configuration issues.

Consult with stakeholders
     to establish, maintain, and refresh their strategic direction in cloud
     adoption.

Become knowledgeable on
     the CDM technical requirements for the federal governments CDM program.
     Understand your

role in CDM activities.

Involved in a wide range
     of security issues including architectures, firewalls, electronic data
     traffic, and network access.

Design, manage, and
     maintain enterprise SIEM infrastructure to improve data ingestion
     processes, including architectural work on data pipelines to ensure
     optimal flow of data.

Maintenance,
     configuration, and implementation of products, appliances, and devices on
     the enterprise network

Basic Qualifications

Bachelors degree and 7
     years of experience, Master's degree and 5 years of experience, or 11
     years of experience in place of a degree

At least 4 years of
     experience using customer-focused Splunk Enterprise Security SIEM
     engineering background - SME knowledge of ES v4.7

At least 4 years of
     experience in a senior Splunk role working in a Splunk clustered
     environment supporting SOC or NOC

environments

At least 4 years of
     experience with:

In-depth knowledge of
     designing, upgrading, maintaining, and implementing network devices on a
     large-scale enterprise

Direct experience with
     Splunk Engineering and data integration

Prior SIEM data modeling
     experience on a similar platform at scale (>50 servers)

Scripting and development
     skills in Python/Perl with a deep comprehension of regular expressions

Coordination and
     communication with other remotely deployed team members

Developing documentation
     with processes and procedures

Proposing, and
     implementing automation features in a large enterprise environment

At least 3 years of
     experience with Linux and SQL/ODBC interfaces

At least 2 years of
     experience in app interface development, using REST APIs

Hold active Splunk Core
     Certifications of at least Splunk Architect

Minimum of 3 year of
     experience in developing and tailoring reporting from network security
     tools.

Must be able to obtain
     and maintain a US Public Trust clearance.

Preferred Qualifications

Candidates with these
     skills will be given preferential consideration.

Experience with Splunk
     Common Information Model (CIM) and Enterprise Analytic

Strong problem-solving
     abilities with an analytic and qualitative eye for reasoning under
     pressure.

Self-starter with the
     ability to independently prioritize and complete multiple tasks with
     little to no supervision.

Knowledge of Cloud
     Services such as AWS, Azure, Office365

Ability to script in one
     more of the following computer languages Python, Bash, Visual Basic or
     PowerShell

Experience in automating
     Splunk Deployments and orchestration within a Cloud environment.

Regards,

Sandy M
 | 
1Point System LLC

Lead Technical Recruiter

Direct:

(803)-828-2974

Email: 
sandy@1pointsys.com

Fax: 
803-832-7973
  
www.1pointsys.com

115 Stone Village Drive

Suite C

Fort Mill, SC

29708

LinkedIn : 
https://www.linkedin.com/in/sandy-m-74b06b212/

An E-Verified company | An Equal Opportunity
Employer

Keywords: cprogramm information technology Maryland South Carolina 
SPLUNK ENTERPRISE SECURITY ENGINEER || Must be a US Citizen
sandyusstaffingrecruiter@gmail.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 355

Location: , Indiana